Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/OehdecSJzl78jYNnJA7sDWnOWWo.roa
File: OehdecSJzl78jYNnJA7sDWnOWWo.roa (raw, json)
Hash identifier: /jvjfqPs4ZiLpXpn7eeNnxl6oE0Ms8QfckwiwLiL6Ls=
Subject key identifier: 39:E8:5D:79:C4:89:CE:5E:FC:8D:83:67:24:0E:EC:0D:69:CE:59:6A
Certificate issuer: /CN=29da6411a13264dc6de0f101108540ef741ed19a
Certificate serial: 01856F14CA17AC0E1BBAF556EA4FCC8BD07A
Authority key identifier: 29:DA:64:11:A1:32:64:DC:6D:E0:F1:01:10:85:40:EF:74:1E:D1:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/OehdecSJzl78jYNnJA7sDWnOWWo.roa
Signing time: Sun 01 Jan 2023 20:45:11 +0000
ROA not before: Sun 01 Jan 2023 20:45:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197233
IP address blocks: 178.212.168.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:ca:17:ac:0e:1b:ba:f5:56:ea:4f:cc:8b:d0:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29da6411a13264dc6de0f101108540ef741ed19a
Validity
Not Before: Jan 1 20:45:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39e85d79c489ce5efc8d8367240eec0d69ce596a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5a:48:2d:b4:79:13:fc:66:a6:35:f7:0d:4e:
11:d0:c5:af:42:d2:61:4f:ce:6f:70:3f:06:3e:e5:
64:a2:70:ba:f8:05:e5:3a:02:1c:d3:1f:b5:7d:6e:
f9:0d:27:9b:0d:3b:13:79:a9:c0:a0:9b:b3:a4:b1:
e5:9d:c8:ef:8f:9c:97:40:a0:d7:3c:37:5b:67:b1:
fe:40:8e:6f:00:bb:b8:13:14:6a:0c:74:48:6f:2a:
a3:e5:e9:4b:54:1a:b1:ee:af:af:1c:df:a2:24:73:
ec:81:2a:ec:a9:ec:67:2d:a1:f6:d1:40:df:15:e1:
89:e4:55:c4:cc:64:5f:ab:5f:3e:71:14:52:cb:f8:
c7:8f:69:f7:1a:1f:3c:f0:7b:95:95:d4:e7:0d:e5:
79:ff:5a:31:f5:3d:76:e8:4a:1f:ad:9d:0b:81:71:
72:64:ed:3c:e2:87:f9:6c:21:6e:35:db:de:5c:fc:
86:6a:a1:dd:e2:57:f7:24:3b:b2:9b:cc:e2:bf:8a:
d6:19:4e:70:a7:bf:75:0b:67:cc:4f:90:65:29:4d:
1d:9d:38:19:76:a5:5f:a3:5e:ca:65:45:a4:cc:9a:
15:a1:d6:4a:11:c5:e0:5b:e1:6c:78:41:4d:1a:67:
93:ef:9b:16:1e:79:0d:c3:9f:97:ee:9b:57:cd:4b:
17:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E8:5D:79:C4:89:CE:5E:FC:8D:83:67:24:0E:EC:0D:69:CE:59:6A
X509v3 Authority Key Identifier:
keyid:29:DA:64:11:A1:32:64:DC:6D:E0:F1:01:10:85:40:EF:74:1E:D1:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/OehdecSJzl78jYNnJA7sDWnOWWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.168.0/21
Signature Algorithm: sha256WithRSAEncryption
81:99:a3:e0:d0:9f:da:cf:1d:a9:89:9c:a8:85:3c:99:b5:0f:
a6:0f:aa:6a:8e:f4:7a:2e:70:a4:a4:92:da:a2:d1:c2:67:28:
9d:99:54:41:cd:b0:5c:ba:6b:19:cd:32:b6:28:ba:c9:b3:0c:
3e:fc:18:1d:7a:68:43:8a:64:92:b2:14:8f:32:39:cd:cd:85:
86:6d:c5:97:28:e5:7a:41:2f:03:b5:50:68:b4:b0:7c:6b:bd:
70:1d:0e:cc:ef:f1:4e:40:5a:1a:82:53:55:78:5c:c2:92:26:
f0:90:6d:00:3a:13:61:56:9d:c2:27:38:a7:68:91:8e:34:c8:
c6:ed:77:50:9a:a8:4e:b1:6f:c2:3b:c3:af:bf:22:01:d0:7c:
3e:96:cb:11:d5:89:70:a3:62:2a:6d:13:30:e9:29:d1:40:79:
18:f8:a3:36:0d:b6:8d:31:70:7c:8a:e6:7c:8f:ea:bb:e4:4e:
fe:df:cc:6a:a1:4d:a6:54:77:52:18:26:c2:4f:1b:2b:22:fe:
c2:ab:4f:ec:45:6c:89:f7:b6:7e:42:01:f9:05:11:69:40:76:
f6:1a:9b:ff:ac:03:21:61:4c:3c:af:54:e5:3c:10:2a:d4:e0:
15:77:bb:28:83:66:de:53:cd:ef:a1:45:01:4c:14:87:ca:d7:
01:57:88:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:12 2024 by rpki-client on console-fra.rpki-client.org